CDAITO_ Information Security Assistant ManagerData: 8 apr 2024
Luogo: London, GB
Intesa Sanpaolo is the banking group leader in Italy, assisting more than 14.6 million retail customers through a network of 5,360 branches.
The Group supports the development of companies and contributes significantly to the country's growth.
Intesa Sanpaolo has a retail banking presence in Central and Eastern Europe, the Middle East, and North Africa, with approximately 1,000 branches and 7.2 million customers in 12 countries.
It is also present in 25 countries to support its corporate customers' cross-border business. Scope and PurposeThe Information Security Senior Assistant Manager operates in close cooperation with the local Information Security Officer (ISO) and with the Head Office teams to ensure the definition of objectives for the Cybersecurity and Business Continuity Programs and monitors compliance with such objectives.
Specific accountabilities of the Information Security Senior Assistant Manager in support of the local ISO include: Support for the oversight of the state of information security and cybersecurity and provide periodic reports (at least annually) on the state of information security to Top Management.Adopt, implement, and update Cybersecurity policies, rules, processes, and procedures in line with Head Office regulatory Framework.In reporting to Top Management, consider the confidentiality of Nonpublic Information and the integrity and security of Information Systems, cybersecurity policies and procedures, material cyber risks, and the overall effectiveness of the information security and cybersecurity program.Work strategically with Head Office to ensure that all aspects of information security and cybersecurity are properly monitored and that security projects and tasks are coordinated.Perform continuous monitoring of Information Security and Cybersecurity programs to ensure compliance with objectives, policies, and procedures.Identify and evaluate changes in local regulations and trends in the Information Security and Cybersecurity sector.Ensure the local execution of Business Continuity activities, including periodical Business Impact Analysis, tests, and reporting.Work with information owners in business units to determine appropriate security objectives.Monitor network activity for malicious activity.Monitor and evaluate vulnerability reports, vendor hot-fixes, and vendor patches for applicability to deployed technologies.Monitor the process of creating, changing, or removing user access across all systems.Monitor the access control program, ensuring appropriate documentation is maintained and approved.Responsible for the Cybersecurity and Business Continuity Training Programs.Required ExperienceRequired Qualifications, Skills and KnowledgeBachelor's in computer science, Information Technology, or related field.Master's degree a plus.CISSP / CISM certification preferable.Experience in application security and vulnerability management.Solid background in Information Security management and Business Continuity management.I.T./Info/Cyber Security risk management experience, including application risk classification and application control assessments.Knowledge of financial industry products and related IT platforms is a plus.Everyone is an asset for our Group, and that person could be you!
Check out our job opportunities, apply, and join our team!
#J-18808-Ljbffr